Re: Fwd: NEA requirements (was Re: Fwd: [Nea] Re: use of a design team to develop requirements)
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Fwd: NEA requirements (was Re: Fwd: [Nea] Re: use of a design team to develop requirements)



-------- Original Message --------

Keith Moore wrote: 
who says the NEA server has to make a (nontrivial) decision?  if the
client presents a statement, signed by a key that is traceable to a host
and a product, that says that the host conforms to a certain level of a
profile, what more does the server need to do other than to tell the
network to give the host whatever level of access corresponds to that
profile?


  Exactly.

  I would like to see use-cases to the contrary.  If they exist, and are
important, then support for queries may be useful.

I suppose that begs the question of how NEA clients learn the profiles that they need to evaluate. Does the NEA protocol need to support, or is this somebody else's problem? What if the client connects and finds that its profile is out-of-date, should NEA allow the client to download the current profile? And how different is that (from a security/privacy point-of-view) than a query?

Keith


_______________________________________________
Nea mailing list
Nea at ietf.org
https://www1.ietf.org/mailman/listinfo/nea



Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.